INFORMATION SECURTY SYSTEMS
KRANTHI KIRAN GOVINDARAM
WRITING ASSIGNMENT 2
planning & Suggestions
A powerful governance design gives a structure to outline
models, data engineering, benefit level assertions, framework support, and your
general estimation design. It is expected to condense and entwine, not
supplant, the archives that portray these exercises in detail. Referencing this
related substance as opposed to inserting it in the governance design will
shield the arrangement from winding up superfluously enlarged and unmanageable.
Not only the new implementation of polices but need to look
into all the polices of the company existing Technical resources, company
secrets and security polices, The main key is everyone in the company should be
aware of governance plan.
In the governance plan to manage the critical standards to
be set, need to set responsibilities for all the key business components
financial ,employee, availability branch record we need to have a specific
people having these responsibilities since these are the key for any
In any application as an example SharePoint we need to
define the complete process how the
solution is been delivered and how it is going to help the individuals working
within the company. Generally these can be done in the initial stages of the
project like proposal for improvement or solution of any company business plan.
This is not a goal that needs to be set and need to have a global meeting with
team members and experts need to discuss the governance plan.
RESPONSIBILITIES OF EACH INDIVIDUAL :-
Each team player should have some key responsibilities that
they should take care of it for example different tracks will be taken care
different individuals based on their expertise so we need to have a proper plan
in maintaining those different tracks in a very efficient way by assigning
responsibilities to Individuals.
For an example company have many branches across the world
maintaining the Network of their own company they need to set a proper process
flow how should the things go in a flow. Need to set SLA’s and define
priorities employee should be responsible for the breaches and maintain the
track without and impact. The central control of the organization also should
be there and need to define the criticality.
Sample Roles of the People in a Organization: –
Executive Sponsor:- Analyzing the solution helping to
improve the Importance of the Solution given and communicating it well to the
Committee:- This Board is ordinarily involved agents of each of the significant
organizations spoke to in the arrangement, including corporate interchanges,
HR, and IT.
Business Owner:- The main
responsibility of a business owner is to manage the solutions according to the
Administrator :-This admin will be taking care of all technical and works
parley to the business owner.
Technology Support Team:-This
team ensures the stability of the business by perfornming day to day activities
such as backup upgrade downgrades and checking for any end of life devices.
Hierarchical esteems enable
every individual to set up needs in their day by day work life. Needs and
activities must be grounded in the association’s esteems and model the esteem
proclamations recognized for every employee’s activity.
Main Core Philosophy: –
The core Philosophy of a
organization is giving a output more that the expectation is the Key for any
company. My example is based on my company maintaining the network of all the
client locations with High availability of the site without any production
framework security starts at the physical level. Each one of the firewalls on
the planet won’t stop an intruder who can increment physical access to your
framework and PCs, so dash up and moreover secure. Need give an overview of the
Mission, vision and goals of the company will enjoy the high returns
Build up a
cross-segment of experts as a council and meet to design the sessions
Improve plans like
advertisements should be done.
Need to review all
your work or progress make sure you are making improvements.
It related hurdles
and making a plan will make you reach the Goal or Win.
Monthly report should
be created and should be reviewed by Management or Board to keep track of the issues
and need to get the Root cause analysis for each and every issue that is causing
issue with expert level recommendation to avoid those issues in future.
Need to identify and find
the solution for any risks. This will help us in a long run if we are identifying
the security gaps or process gaps.
IT standards are the main
key aspects are
Companies must understand
the complex issues in their environment and need to plan the governance plan
accordingly.IT governance can be in many ways helps in avoiding criminal
activity both ways and update the technologies and plans according to the
All representatives, from
bleeding edge workers and their chiefs to the administrators of the
directorate, should add to its authorization administration approaches and
methodology.IT governance exists to assist enterprise leaders in their
responsibility to make IT successful in supporting the firm’s goals and
mission. IT governance helps firm executives to raise awareness and
understanding among employees. Such governance also helps provide guidance and
tools to boards of directors, executive managers, and CIOs to ensure that IT is
appropriately aligned with corporate goals and policies and that IT meets and
exceeds expectations of the firm. Over the next 40 years, IT leadership will
move from serving as an individual contributor on the corporate team to being a
full member of the team. The huge burden of the CIO ensuring that IT is
effectively managed will become a company and board-level responsibility.
However, this change will be more easily accomplished if IT governance is fully
incorporated and is properly enforced within companies.